$ rpki-client -vvf repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/323030313a6466363a353330303a3a2f34382d3438203d3e20313439373130.roa File: 323030313a6466363a353330303a3a2f34382d3438203d3e20313439373130.roa (raw, json) Hash identifier: 2eKYMh+o40ipOAi8hjr+a/aFZYlLyRfS6uvyieWq8yI= Subject key identifier: 1E:85:A3:B3:1D:99:7F:37:FD:AA:CA:CF:A5:85:68:BA:5F:6A:F1:4D Certificate issuer: /CN=157E8817E413B3A8B2866190AD82151E868B1FA7 Certificate serial: 6288F3C4100338BA09A31AFAC2E66020CE602339 Authority key identifier: 15:7E:88:17:E4:13:B3:A8:B2:86:61:90:AD:82:15:1E:86:8B:1F:A7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/323030313a6466363a353330303a3a2f34382d3438203d3e20313439373130.roa Signing time: Mon 26 May 2025 09:00:02 +0000 ROA not before: Mon 26 May 2025 08:55:02 +0000 ROA not after: Mon 25 May 2026 09:00:02 +0000 asID: 149710 IP address blocks: 2001:df6:5300::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.crl rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 07:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:88:f3:c4:10:03:38:ba:09:a3:1a:fa:c2:e6:60:20:ce:60:23:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=157E8817E413B3A8B2866190AD82151E868B1FA7 Validity Not Before: May 26 08:55:02 2025 GMT Not After : May 25 09:00:02 2026 GMT Subject: CN=1E85A3B31D997F37FDAACACFA58568BA5F6AF14D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1a:80:9a:a7:a5:82:6f:8d:34:a3:3b:7e:04: cc:22:c2:94:72:97:42:4b:d6:3c:69:90:e8:2f:04: d7:db:d8:8e:40:45:07:78:65:77:8d:04:38:2e:5f: 64:23:e8:7b:36:88:6f:91:96:5a:ab:d6:df:51:15: cb:e4:3f:35:86:5d:b6:e8:7e:91:82:b5:8d:6b:14: 55:5d:81:8a:a1:39:f6:41:00:7d:b4:95:f4:68:8c: 07:f3:b4:c5:5f:f8:6e:cb:d4:56:9d:66:58:78:fa: 7d:77:a9:ed:83:38:08:94:01:05:28:22:23:cf:8b: f5:ab:93:13:d8:d0:a2:eb:77:44:e2:b5:82:e1:06: 78:9e:9c:f3:1a:23:52:ff:fc:2e:94:de:4b:df:46: 18:91:f8:73:bc:be:10:3e:27:fc:db:c7:78:9f:20: 52:9f:b1:e8:02:70:10:fe:3d:2d:72:d8:b1:b5:26: 49:33:cf:34:00:2e:cf:b9:0b:74:1c:29:be:40:fd: 3b:03:d4:da:df:bc:f4:0f:c0:17:5c:80:a3:fd:cc: af:15:a2:48:6f:f9:d8:c9:82:32:b1:a3:0e:d9:a2: 8d:d1:55:4f:43:06:28:27:92:a3:05:ef:31:37:f4: 29:5f:e0:6b:f8:ca:d0:d8:02:e5:09:9a:1b:94:a6: a9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:85:A3:B3:1D:99:7F:37:FD:AA:CA:CF:A5:85:68:BA:5F:6A:F1:4D X509v3 Authority Key Identifier: keyid:15:7E:88:17:E4:13:B3:A8:B2:86:61:90:AD:82:15:1E:86:8B:1F:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/323030313a6466363a353330303a3a2f34382d3438203d3e20313439373130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:5300::/48 Signature Algorithm: sha256WithRSAEncryption a5:b2:77:b2:48:db:fd:ce:bd:9e:52:fd:5b:81:21:b5:00:21: c2:d4:37:a1:5f:7c:3a:b7:53:9e:e4:df:95:aa:e1:1a:7f:12: f5:87:56:99:2e:38:60:ac:dc:af:0f:3f:13:a5:a4:8c:ec:14: 47:82:00:e5:0a:41:ee:e6:0e:e8:86:75:fe:e9:bf:4e:92:78: e0:6d:12:97:39:f6:66:a8:69:5f:0f:b2:04:fc:75:72:38:e6: 4a:06:83:8d:38:95:8c:77:c0:0f:2e:3a:63:3c:97:e9:be:6b: 0d:93:de:ca:65:67:67:1a:32:12:5a:52:f4:18:95:fc:a2:f7: 2c:9f:57:91:50:e9:93:45:8d:76:b5:e2:7d:04:f5:06:71:6f: 7b:70:80:fa:7c:70:76:1b:3f:c8:ac:19:59:31:61:af:75:79: 28:f5:19:2c:d0:f6:7f:c1:46:87:bb:70:31:3c:67:c0:97:99: 60:b3:3f:80:07:fb:f4:f5:9b:89:ab:0d:83:89:4d:56:9f:f3: d0:64:f2:e2:de:a9:64:13:9b:81:85:4f:cf:e9:93:cb:08:4f: 3a:9f:b3:d3:0c:29:df:38:15:58:ef:17:f4:d9:e2:58:0b:26: 49:9f:e4:53:a7:17:4c:ca:2f:39:d4:d7:86:d1:34:16:e8:3b: 1b:81:39:10 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYojzxBADOLoJoxr6wuZgIM5gIzkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU3RTg4MTdFNDEzQjNBOEIyODY2MTkwQUQ4MjE1MUU4 NjhCMUZBNzAeFw0yNTA1MjYwODU1MDJaFw0yNjA1MjUwOTAwMDJaMDMxMTAvBgNV BAMTKDFFODVBM0IzMUQ5OTdGMzdGREFBQ0FDRkE1ODU2OEJBNUY2QUYxNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9GoCap6WCb400ozt+BMwiwpRy l0JL1jxpkOgvBNfb2I5ARQd4ZXeNBDguX2Qj6Hs2iG+Rllqr1t9RFcvkPzWGXbbo fpGCtY1rFFVdgYqhOfZBAH20lfRojAfztMVf+G7L1FadZlh4+n13qe2DOAiUAQUo IiPPi/WrkxPY0KLrd0TitYLhBnienPMaI1L//C6U3kvfRhiR+HO8vhA+J/zbx3if IFKfsegCcBD+PS1y2LG1JkkzzzQALs+5C3QcKb5A/TsD1NrfvPQPwBdcgKP9zK8V okhv+djJgjKxow7Zoo3RVU9DBignkqMF7zE39Clf4Gv4ytDYAuUJmhuUpqntAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUHoWjsx2Zfzf9qsrPpYVoul9q8U0wHwYDVR0j BBgwFoAUFX6IF+QTs6iyhmGQrYIVHoaLH6cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 M2NkNjBiMi0wZjU3LTRmYzUtYmM2Mi0xZDliNmM0OGZjZjAvMC8xNTdFODgxN0U0 MTNCM0E4QjI4NjYxOTBBRDgyMTUxRTg2OEIxRkE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU3RTg4MTdFNDEzQjNBOEIyODY2MTkwQUQ4MjE1MUU4NjhC MUZBNy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzY2Q2MGIyLTBmNTctNGZjNS1i YzYyLTFkOWI2YzQ4ZmNmMC8wLzMyMzAzMDMxM2E2NDY2MzYzYTM1MzMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzczMTMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9lMAMA0GCSqGSIb3DQEBCwUAA4IBAQClsneySNv9zr2eUv1bgSG1ACHC1DehX3w6 t1Oe5N+VquEafxL1h1aZLjhgrNyvDz8TpaSM7BRHggDlCkHu5g7ohnX+6b9Oknjg bRKXOfZmqGlfD7IE/HVyOOZKBoONOJWMd8APLjpjPJfpvmsNk97KZWdnGjISWlL0 GJX8ovcsn1eRUOmTRY12teJ9BPUGcW97cID6fHB2Gz/IrBlZMWGvdXko9Rks0PZ/ wUaHu3AxPGfAl5lgsz+AB/v09ZuJqw2DiU1Wn/PQZPLi3qlkE5uBhU/P6ZPLCE86 n7PTDCnfOBVY7xf02eJYCyZJn+RTpxdMyi851NeG0TQW6DsbgTkQ -----END CERTIFICATE-----Generated at Sun Jun 8 03:58:03 2025 by rpki-client